Securing GRUB

From MEPIS Documentation Wiki

By default, GRUB allows a user to edit the boot commands. This can be a major security hole if you're worried about someone getting root access from the console (as in a kiosk or computer lab situation), as anyone can enter runlevel 1 or type /bin/bash and get a root console without entering a password.

GRUB has some very flexible security options however. The first step is to secure the grub command line with a password.